VAPT Engineer

Summary role description:

Hiring a Senior VAPT Engineer for one of the leading enterprise IT solutions and digital transformation services provider.

Company description:

Our client is a well-established global technology and digital transformation company specializing in Predictive Analytics, Digital Experience, and Digital Supply Chain Management. They have earned the trust of over 2,000 customers, including Fortune 500 companies, and boast a team of more than 4,000 associates with technical and domain expertise across industries such as Oil & Gas, Telecom, Power, Government, Banking, Retail, and SCM/Logistics. With a proven track record, they have successfully delivered solutions in 20 countries across North America, the Middle East, Far East, Africa, and Asia.

Role details:

• Title / Designation: Senior VAPT Engineer
• Work Mode: Remote

Role & responsibilities:

• Conduct manual and automated penetration tests on web applications, APIs, internal systems, networks, and mobile apps.
• Assess and validate vulnerabilities, track remediation efforts, and collaborate with IT and application teams.
• Review application architecture and code for security issues, providing recommendations for secure SDLC practices.
• Prepare detailed reports with risk ratings, evidence, exploit techniques, and remediation guidance.
• Present findings and security recommendations to both technical and non-technical stakeholders.

Candidate requirements:

• 5-10 years of hands-on experience in VAPT, preferably in both application and infrastructure testing.
• Solid knowledge of OWASP Top 10, SANS 25, and CVSS scoring.
• Experience with tools like Burp Suite, Metasploit, Nmap, Wireshark, Nikto, Hydra, and SQLmap.
• Familiarity with SAST/DAST platforms like Fortify or Veracode.
• Proficiency in scripting (Python, Bash, or PowerShell) to build or extend tools.
• Strong understanding of TCP/IP, firewalls, IDS/IPS, and network protocols.
• Familiarity with cloud security (AWS, Azure, or GCP).
• Required Certifications: Burp Suite Certified Professional, GWAPT, OSWE, or OSWA.

Recruiter Details:

Check Your Resume for Match

Upload your resume and our tool will compare it to the requirements for this job like recruiters do.